Security | The Dollar Web

Our Security Philosophy

At The Dollar Web, we've built our entire platform around a simple principle: your documents are yours and yours alone. We don't want to see them, store them, or have access to them in any way. This isn't just a privacy policy statement—it's fundamental to how our tools work.

100% Browser-Based

All document processing happens entirely within your web browser. Your files never leave your device.

No Server Storage

We don't upload, store, or retain any of your documents on our servers. Ever.

Open Source Libraries

We use well-established, transparent open-source tools that have been vetted by the security community.

How It Actually Works

The key to our security model is that all document processing happens in your browser using JavaScript. When you use a Dollar Web tool:

Your Files Stay Local

When you select a file to process (like a PDF to merge or an image to edit), that file is loaded into your browser's memory. The browser's JavaScript engine reads the file and performs whatever operations you've requested—merging PDFs, resizing images, generating QR codes, etc.

No Network Transmission

Your documents are never transmitted over the internet to our servers or anyone else's servers. The only network requests we make are to:

Load the web page itself and its resources (JavaScript libraries, CSS stylesheets)
Authenticate your account (username/password only, no documents)
Verify your subscription status
Send anonymous usage analytics (tool usage frequency, not document content)

At no point do we request access to your actual document data.

Processing Happens in Your Browser

All the heavy lifting—PDF manipulation, image editing, file conversion—is done by your web browser's JavaScript engine on your own device. We provide the code that tells your browser how to do these operations, but we never see the input or output files.

Results Download Directly

When processing is complete, the result is offered as a download directly from your browser's memory. At no point does it pass through our servers.

What This Means for Your Privacy

We Can't See Your Documents

It's technically impossible for us to view your files since they never reach our servers. We genuinely have no access to your documents.

No Data Breaches Possible

Since we don't store your documents, they can't be stolen in a data breach. The only way to access your files would be to compromise your own device.

No Third-Party Access

We don't use analytics trackers that can see your documents. No third-party services have access to your files during processing.

What We Do Collect

While we don't collect or see your documents, we do use limited external services for essential platform functions:

Authentication & Account Management

We use Supabase for secure user authentication and account management. Supabase handles:

User registration and login
Password encryption and secure storage
Session management
Account tier verification (free vs. premium)

Supabase is an industry-standard authentication provider with enterprise-grade security. Your passwords are never stored in plain text and are encrypted using industry best practices.

Payment Processing

We use Stripe for all payment processing. Stripe is a PCI-DSS Level 1 certified payment processor—the highest level of security certification in the payments industry.

Important: The Dollar Web never sees or stores your payment information.

When you upgrade to Premium, you're redirected to Stripe's secure checkout page. Stripe handles all payment details, including credit card numbers, billing addresses, and transaction data. We only receive confirmation that a payment was successful—we never have access to your payment methods.

Usage Analytics

We collect usage data to improve our tools, including:

Which tools are used most frequently
Page views and navigation patterns
General session information
Error reports to help us fix bugs

This data is aggregated and we can't tie it to specific documents or file contents in any way.

Open Source Libraries

Our tools are built using trusted, open-source JavaScript libraries that are industry standards for browser-based document processing. These libraries include:

pdf-lib & PDF.js: PDF creation, manipulation, and rendering
jsPDF & html2pdf: Converting HTML to PDF
Fabric.js: Canvas-based image editing
JSZip: Creating and extracting ZIP archives
Mammoth: DOCX to HTML conversion
QRCode.js: QR code generation

All libraries are loaded from trusted CDNs or hosted locally on our servers. You can view the complete list of open-source components and their licenses on our Licenses page.

Business Use & Compliance

The Dollar Web's architecture makes it suitable for business use, including handling sensitive documents:

Safe for Confidential Documents

Because documents are processed entirely in your browser and never transmitted to servers, you can safely use our tools for:

Confidential business documents
Internal company materials
Client information (subject to your own compliance requirements)
Personal identifying information
Financial records

HTTPS Encryption

All connections to The Dollar Web are encrypted using HTTPS/TLS, protecting your authentication credentials and account information during transmission.

No Data Retention

Since we don't receive your documents, we have no documents to retain, delete, or manage. Your compliance obligations around data retention and destruction remain entirely under your control.

Note for Regulated Industries: While our architecture is designed for privacy and security, businesses in highly regulated industries (healthcare, finance, etc.) should evaluate whether our tools meet their specific compliance requirements. Our client-side processing model eliminates many data handling concerns, but you remain responsible for ensuring compliance with regulations applicable to your industry.

What Happens When You Use Our Tools

Here's a typical workflow to illustrate our security model:

Example: Merging PDFs

You select files: You choose PDFs from your device using your browser's file picker
Files load into browser memory: The files are read into your browser's JavaScript environment—they never leave your device
Processing occurs locally: Our JavaScript code uses pdf-lib to merge the documents entirely within your browser
You download the result: The merged PDF is created in your browser and offered as a download
Memory is cleared: When you close the page, all document data is removed from browser memory

At no point in this process do your files touch our servers or leave your device.

Best Practices for Users

While we've built security into our architecture, here are some recommendations to maximize your security:

Keep your browser updated: Modern browsers have security features that protect you while using web applications
Use strong passwords: Protect your account with a unique, complex password
Log out on shared devices: Always log out when using public or shared computers
Verify the URL: Make sure you're on thedollarweb.com when entering login credentials
Review browser permissions: Our tools only need file access when you explicitly select files to process

Questions About Security?

We take security seriously and are committed to transparency about how our platform works. If you have questions about our security practices or concerns about how your data is handled, please don't hesitate to reach out.

Contact us: info@thedollarweb.com

For more information about data collection and usage, please review our Privacy Policy.